SUSE CVE-2023-4235

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodedeliverreport function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound...

PT-2023-9381

Name of the Vulnerable Software and Affected Versions oFono affected versions not specified Description A flaw in the oFono interface for working with mobile connectivity is related to a buffer overflow in the decode deliver function during SMS decoding. This issue can be exploited by a remote...

SUSE-SU-2023:4891-1 Security update for ncurses

This update for ncurses fixes the following issues: - CVE-2023-50495: Fixed a segmentation fault via ncwrapentry bsc1218014 - Modify reset command to avoid altering clocal if the terminal uses a modem bsc1201384...

The vulnerability of the data modem in the microprogramming software of Qualcomm-internal chips allows a perpetrator to cause a service failure.

The vulnerability of the data modem component of Qualcomm’s embedded software is related to incorrect cleaning of the TLB buffer during message processing. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

Design/Logic Flaw

there is a possible permanent DoS or way for the modem to boot unverified firmware due to a logic error in the code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-48406

there is a possible permanent DoS or way for the modem to boot unverified firmware due to a logic error in the code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-48406

CVE-2023-48406 affects Google Pixel devices, specifically the Modem OTP component used in Pixel firmware. The public descriptions describe a logic error that can cause a permanent DoS or allow the modem to boot with unverified firmware. This could lead to local escalation of privilege, requiring ...

PT-2023-30826 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a logic error in the code that could lead to a permanent DoS or allow the modem to boot unverified firmware. This could result i...

Google Pixel Security Breach

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from a security vulnerability that stems from the presence of a logic error in the code, where the modem may experience a denial of service...

CVE-2023-33042

Transient DOS in Modem after RRC Setup message is received...

CVE-2023-33043

Transient DOS in Modem when a Beam switch request is made with a non-configured BWP...

CVE-2023-33044

Transient DOS in Data modem while handling TLB control messages from the Network...

Design/Logic Flaw

Transient DOS in Modem when a Beam switch request is made with a non-configured BWP...

Memory corruption

Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments...

Design/Logic Flaw

Transient DOS in Data modem while handling TLB control messages from the Network...

Design/Logic Flaw

Transient DOS in Modem after RRC Setup message is received...

CVE-2023-33044

CVE-2023-33044 affects Qualcomm Data Modem. The issue is a transient Denial of Service in the data modem when handling TLB control messages from the network, caused by incorrect buffer clearance. Impact is DoS with availability loss (CVSS: Network attack, low complexity, no user interaction; Avai...

CVE-2023-33044 Reachable Assertion in Data Modem

Transient DOS in Data modem while handling TLB control messages from the Network...

CVE-2023-33043

The CVE-2023-33043 issue affects Qualcomm embedded platform modem code and causes a transient DoS when a Beam switch request occurs with a non-configured BWP. Root cause per PT-2023-7611 is an incorrect channel division and sub-band switching implementation during a Beam Switching connection, tri...

CVE-2023-33043 Reachable Assertion in Modem

Transient DOS in Modem when a Beam switch request is made with a non-configured BWP...